General
-
Target
01cbac1b864a087c7fe6f2b38b91815b_JaffaCakes118
-
Size
321KB
-
Sample
240426-197ypsdd43
-
MD5
01cbac1b864a087c7fe6f2b38b91815b
-
SHA1
6bdb698c78fb65450fab42ce9e63ce798892b9c9
-
SHA256
8a920b9e12f5a2b3f1f3f13a225cec6c4f102fd1f727969d70611e7b0fe037a4
-
SHA512
2147e4295bee5d023e187daf3fd02b2dda6985194503d3b32ad3ab487450ee9d27040d1d69ba89b3f826ac95873ba47a5fada05945cdf09661f9b0506462de44
-
SSDEEP
6144:efwD/eHK1rGTAOfrIV/QHxOtJkkgYsGGdzKLK:efwDz1+q4Hsi+LK
Malware Config
Targets
-
-
Target
01cbac1b864a087c7fe6f2b38b91815b_JaffaCakes118
-
Size
321KB
-
MD5
01cbac1b864a087c7fe6f2b38b91815b
-
SHA1
6bdb698c78fb65450fab42ce9e63ce798892b9c9
-
SHA256
8a920b9e12f5a2b3f1f3f13a225cec6c4f102fd1f727969d70611e7b0fe037a4
-
SHA512
2147e4295bee5d023e187daf3fd02b2dda6985194503d3b32ad3ab487450ee9d27040d1d69ba89b3f826ac95873ba47a5fada05945cdf09661f9b0506462de44
-
SSDEEP
6144:efwD/eHK1rGTAOfrIV/QHxOtJkkgYsGGdzKLK:efwDz1+q4Hsi+LK
Score10/10-
GandCrab payload
-
Gandcrab
Gandcrab is a Trojan horse that encrypts files on a computer.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-